[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPSEC or not [Re: Identifiers]

To: mbagnulo@ing.uc3m.es
Subject: IPSEC or not [Re: Identifiers]
From: Brian E Carpenter <brc@zurich.ibm.com>
Date: Thu, 25 Mar 2004 10:55:34 +0100
Cc: "Fleischman, Eric" <eric.fleischman@boeing.com>, Francis Dupont <Francis.Dupont@enst-bretagne.fr>, Iljitsch van Beijnum <iljitsch@muada.com>, Multi6 List <multi6@ops.ietf.org>
Organization: IBM
References: <LIEEJBCNFDJHFFKJJDPAOECLDOAA.mbagnulo@ing.uc3m.es>

marcelo bagnulo wrote:
> 
> Hi Erik,
...
> > Changing topics, I am confused (perhaps because I am a newbie on
> > this list)
> > by the earlier discussion about authentication and authorization. I
> > would have thought that we would be using IPSec (whether AH or ESP) for
> > situations requiring authentication at the network layer. Is
> > there a reason
> > why we aren't use IPSec but rather need an alternative network
> > layer provision?
> 
> HIP uses IPSec ESP headers, but some others solutions use alternative
> formats, for optimization, for instance

At the moment we are trying to reach an architectural view - i.e. what do
we need to authenticate, if anything? Whether we use HIP or IPSEC is a
solution-space choice, for a little bit later.

   Brian

References:
- RE: Identifiers
  - From: "marcelo bagnulo" <mbagnulo@ing.uc3m.es>

Prev by Date: Re: Identifiers
Next by Date: RE: Identifiers
Previous by thread: RE: Identifiers
Next by thread: Re: Identifiers
Index(es):
- Date
- Thread